Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SYSNET/xk918NOaTUxPeSLAGdw7rzq2E0k.roa
File: xk918NOaTUxPeSLAGdw7rzq2E0k.roa (raw, json)
Hash identifier: UIHjko24pAcyebfn1ct5qzVEMfW4/+NVKEtpBRkqyoI=
Subject key identifier: C6:4F:75:F0:D3:9A:4D:4C:4F:79:22:C0:19:DC:3B:AF:3A:B6:13:49
Certificate issuer: /CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC
Certificate serial: 0792
Authority key identifier: 96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/xk918NOaTUxPeSLAGdw7rzq2E0k.roa
Signing time: Tue 29 Sep 2020 10:06:19 +0000
ROA not before: Tue 29 Sep 2020 10:06:19 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 4783
IP address blocks: 210.67.112.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1938 (0x792)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC
Validity
Not Before: Sep 29 10:06:19 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C64F75F0D39A4D4C4F7922C019DC3BAF3AB61349
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:4f:77:87:3e:84:9f:14:b8:9f:9b:5d:69:16:
db:b3:23:67:b8:04:ab:ee:a0:0c:b9:04:8a:9e:a3:
54:38:33:f3:c3:0b:6a:45:6c:80:16:f4:e0:fc:6b:
0a:58:b2:e0:8e:eb:dd:8c:e4:cb:60:70:b7:35:56:
51:78:c8:ae:c8:03:9b:8e:1a:65:89:51:42:b3:56:
a0:34:f8:01:5c:a1:8d:df:cc:63:74:3d:60:76:b7:
ae:25:50:0b:d7:b4:5e:01:d7:39:93:9c:e3:68:2e:
66:83:34:08:f8:d2:3d:d7:04:1b:96:5e:a3:9e:ab:
37:80:87:47:ad:e2:67:66:7e:a2:93:b7:a5:33:bc:
50:57:b9:7d:40:99:84:4e:f4:5c:4f:c5:3d:ad:cd:
58:ae:6e:7d:69:5b:b3:73:a6:bf:b5:a2:3c:10:1d:
66:89:a9:cf:53:36:f1:1d:ae:0f:20:00:f1:84:36:
d2:3a:36:b5:99:0f:11:e7:52:22:10:d6:ae:60:ba:
67:b1:81:af:1d:27:57:fe:5f:90:d6:46:23:dc:e9:
af:e0:32:5f:9a:f0:07:b1:8b:d3:8a:6e:a2:5b:e7:
37:87:35:08:68:6a:dd:8f:c5:d7:a0:86:d4:94:59:
5c:f6:a7:66:7c:d2:0a:f7:d4:aa:2b:de:5d:06:3b:
31:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:4F:75:F0:D3:9A:4D:4C:4F:79:22:C0:19:DC:3B:AF:3A:B6:13:49
X509v3 Authority Key Identifier:
keyid:96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/xk918NOaTUxPeSLAGdw7rzq2E0k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.67.112.0/20
Signature Algorithm: sha256WithRSAEncryption
2d:9c:d9:79:3a:9a:d9:c5:ca:86:ac:19:f5:08:66:b5:2e:fc:
a6:1f:3d:63:22:d1:ae:2c:43:e3:2c:9e:f9:df:c5:a1:ad:43:
82:a5:d7:78:82:fd:51:d1:ce:ed:97:aa:c3:a4:35:c3:09:a4:
27:94:11:cc:6d:7a:4d:52:56:59:89:4c:1f:66:67:46:98:ff:
a7:62:0a:12:d4:59:2f:06:27:f9:d9:62:e3:96:39:31:31:ce:
e6:85:70:c4:66:9f:57:85:32:cf:77:8e:ad:b4:94:e3:fe:74:
3d:0d:fe:96:42:50:29:e9:b2:a7:34:23:53:c7:53:ee:89:7b:
cd:64:c2:dc:6d:cd:0a:67:d2:2f:5e:b4:ef:57:fd:28:57:09:
8f:4a:7a:d6:c4:78:c1:0d:5d:17:b9:4a:1b:cc:16:bb:aa:6e:
50:c8:ca:5c:ad:c9:e3:3d:a4:85:e5:c0:c2:f4:d2:2d:ea:4e:
bc:3c:2a:4c:76:84:18:93:82:8e:42:ac:ee:40:e6:c4:63:c9:
70:03:3a:74:58:d8:fc:dc:14:c3:9c:0a:f8:45:74:2d:d7:90:
ee:39:c2:2d:94:d2:d2:13:6c:1c:c3:5c:d8:bb:42:fb:51:93:
44:0a:23:44:95:ad:7e:f8:f8:19:9b:72:5d:59:eb:c8:c6:33:
80:97:86:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:17 2023 by rpki-client on console-fra.rpki-client.org